0.001 Low
EPSS
Percentile
31.1%
In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token.
github.com/OWASP/www-project-csrfguard
github.com/reidmefirst/vuln-disclosure/blob/main/2021-01.txt
nvd.nist.gov/vuln/detail/CVE-2021-28490
owasp.org/www-project-csrfguard